Connected Device Security

What is Connected Device (Internet of Things, or IoT) Security?

Connected Device Security is a relatively new domain, and these devices are exposed to a large attack surface through their Wi-Fi, Bluetooth and proprietary RF connections. Connected devices are also vulnerable to attacks through mobile and web applications, or an interface controlled by a thick or thin client, and are at risk of physical hardware attacks targeting the electronics of the device.

Auditing these products require expert skills in a range of specific fields, such as radio signals, electronics, computer systems, network applications and cryptography.

At SSL247®, we are committed to ensuring that your devices, products, employees, clients, and business as a whole are secure from attacks.

In addition to security audits of your connected devices, we can conduct training and best practice advice on the security assessment of connected devices.

Request a Free proposal

Methodology and Strategy

Depending on your devices and their attack surface, our teams will collaborate with yours to develop an action plan and determine the testing target — for example, testing the connected device itself or testing the back-end environment that your device communicates with.

The methodology our teams employ for testing your infrastructure is similar to that of application and mobile tests.

The aim is to attack all visible layers of the service.

Tests that focus speficially on the device itself will be conducted as follows:

Analysis of communication between the device and the master infrastructure or other devices within a decentralised system (for example plug-ins of a home automation system).

Retrieval of information via electronic debugging ports (JTAG, UART, etc.) or extraction of the memory from various software chips.

Analysis / Reverse engineering of the embedded firmware from the moment it is recovered (for example, electronically or from the manufacturer's website).

Which solution is best for your organisation?

Our pentesters have created a tailor-made questionnaire to determine the best services to solve your problems and meet your needs.

Norton seals are viewed more than half a billion times a day on more than 100,000 websites in 170 countries and in search results on enabled browsers, as well as partner shopping sites and product review pages. When website visitors see the Norton Trust Seal, they are less likely to abandon a transaction and more likely to do business with you online.